Описание
libdw in elfutils 0.173 checks the end of the attributes list incorrectly in dwarf_getabbrev in dwarf_getabbrev.c and dwarf_hasattr in dwarf_hasattr.c, leading to a heap-based buffer over-read and an application crash.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 0.170-0.4ubuntu0.1 |
| cosmic | released | 0.170-0.5.0ubuntu1.1 |
| devel | not-affected | 0.176-1.1 |
| disco | not-affected | 0.176-1 |
| eoan | not-affected | 0.176-1.1 |
| esm-infra-legacy/trusty | released | 0.158-0ubuntu5.3+esm1 |
| esm-infra/bionic | released | 0.170-0.4ubuntu0.1 |
| esm-infra/focal | not-affected | 0.176-1.1 |
| esm-infra/xenial | released | 0.165-3ubuntu1.2 |
| focal | not-affected | 0.176-1.1 |
Показывать по
EPSS
4.3 Medium
CVSS2
5.5 Medium
CVSS3
Связанные уязвимости
libdw in elfutils 0.173 checks the end of the attributes list incorrectly in dwarf_getabbrev in dwarf_getabbrev.c and dwarf_hasattr in dwarf_hasattr.c, leading to a heap-based buffer over-read and an application crash.
libdw in elfutils 0.173 checks the end of the attributes list incorrectly in dwarf_getabbrev in dwarf_getabbrev.c and dwarf_hasattr in dwarf_hasattr.c, leading to a heap-based buffer over-read and an application crash.
libdw in elfutils 0.173 checks the end of the attributes list incorrec ...
libdw in elfutils 0.173 checks the end of the attributes list incorrectly in dwarf_getabbrev in dwarf_getabbrev.c and dwarf_hasattr in dwarf_hasattr.c, leading to a heap-based buffer over-read and an application crash.
Уязвимость библиотеки libdw набора утилит для обработки объектов ELF Elfutils, связанная с чтением за допустимыми границами буфера данных, позволяющая нарушителю вызвать отказ в обслуживании
EPSS
4.3 Medium
CVSS2
5.5 Medium
CVSS3